$ rpki-client -vvf rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/53E5E76C2BEB11F0B6404111C4F9AE02.roa File: 53E5E76C2BEB11F0B6404111C4F9AE02.roa (raw, json) Hash identifier: UrkCA5c49lhfjbu20IVP5ulUImNhUwsB0Dx6P4o2Exs= Subject key identifier: 2D:BD:D1:A9:4F:4B:5C:8F:97:EA:82:2E:B9:39:D1:56:12:27:69:05 Certificate issuer: /CN=A913C432/serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Certificate serial: 0FD6 Authority key identifier: 32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer Subject info access: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/53E5E76C2BEB11F0B6404111C4F9AE02.roa Signing time: Thu 08 May 2025 09:03:37 +0000 ROA not before: Thu 08 May 2025 09:03:37 +0000 ROA not after: Wed 01 Jul 2026 00:00:00 +0000 asID: 138640 IP address blocks: 103.138.24.0/23 maxlen: 23 103.138.24.0/24 maxlen: 24 103.138.25.0/24 maxlen: 24 2404:bec0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 17:27:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4054 (0xfd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A913C432, serialNumber=329DA03DB9944751498A5FCA53C85DAA60CB9A32 Validity Not Before: May 8 09:03:37 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=681c7369-d76a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:7d:f9:1f:78:69:f9:c7:32:a9:6b:0a:6c:17: 1a:21:d7:9f:87:23:3c:22:a2:b0:64:90:aa:b0:30: 96:e4:b4:f5:2b:df:06:2c:28:3e:31:e9:9c:21:ed: c2:9e:2a:03:f4:67:53:43:67:88:d8:8d:72:bf:9e: 82:d5:f2:f5:39:3d:d6:bf:36:ba:48:4e:2e:ed:6b: d5:c4:0a:1b:33:8e:f0:e2:47:5d:de:ed:22:a7:b4: 3b:76:ff:f9:fb:26:95:3e:cf:fb:d6:57:f4:46:15: c5:63:d7:5a:5e:b8:2f:5f:5a:5f:b0:d0:01:00:60: 7b:9d:2c:f6:72:41:cd:c2:90:6c:57:1a:ec:70:26: cf:9f:f4:cc:bc:79:5d:45:83:44:b7:89:79:b2:b4: 27:4e:ca:3e:45:10:59:30:0e:2d:fc:86:c3:79:15: 22:2a:89:fa:a2:b8:12:e7:ff:94:93:d7:81:b8:c5: ef:02:e4:54:8d:b3:70:af:82:7b:55:23:16:d7:97: c3:c1:93:9f:f6:62:d2:29:69:e1:82:56:79:e5:b3: 79:6b:5d:9a:ca:c5:4c:e3:38:c6:c0:d7:bb:95:d0: 6e:bc:b8:85:b4:7d:13:24:6d:04:d6:63:91:a2:27: ee:a6:35:75:14:13:42:80:a7:5c:a4:cd:c8:39:d3: 99:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:BD:D1:A9:4F:4B:5C:8F:97:EA:82:2E:B9:39:D1:56:12:27:69:05 X509v3 Authority Key Identifier: keyid:32:9D:A0:3D:B9:94:47:51:49:8A:5F:CA:53:C8:5D:AA:60:CB:9A:32 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/Mp2gPbmUR1FJil_KU8hdqmDLmjI.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/Mp2gPbmUR1FJil_KU8hdqmDLmjI.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A913C432/2DCABA685CF211E984939224C4F9AE02/53E5E76C2BEB11F0B6404111C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 103.138.24.0/23 IPv6: 2404:bec0::/32 Signature Algorithm: sha256WithRSAEncryption 3b:58:bb:9a:cf:f9:35:81:db:6d:9b:2d:78:a5:da:f5:5f:ab: 95:5c:63:66:25:7f:e9:29:54:c1:1f:87:fb:8a:2b:44:e0:36: a9:07:97:d3:5e:d8:3a:ae:f4:d2:b7:dd:2f:76:cb:d9:98:c3: 2f:b4:a8:a8:c3:1a:70:eb:83:5a:e9:78:88:63:9a:b4:cb:0a: 46:af:20:21:e9:c8:8d:ea:b2:a3:9a:e0:67:40:78:c8:b0:ee: f8:45:5d:d9:6a:ae:e7:63:38:e9:2a:88:7b:fc:93:e5:a4:62: 60:82:e8:46:b4:16:53:c4:4e:0d:5f:55:05:46:01:0d:b6:09: 54:13:34:26:7f:a1:e1:c8:58:d2:c0:0c:fd:7f:1e:bb:57:e3: c6:23:d3:b5:d8:48:3d:ea:ae:67:b8:74:90:2a:7b:6b:d3:cb: 05:5b:7c:8d:4d:e5:7f:55:25:2f:f7:d6:b4:a8:64:0b:fc:bd: f7:1a:0e:ee:b9:c4:18:46:6a:fb:10:b2:e4:79:34:68:c0:60: 1d:97:11:d9:d7:ad:1e:94:83:c4:a9:56:65:e5:d2:b9:28:d1: 9f:71:56:da:58:5e:0e:e5:02:b6:7d:e0:23:b6:49:66:b4:c5: 00:0c:22:ff:2b:ac:64:06:17:00:32:8f:7e:99:fa:58:2c:1a: 67:a2:4b:b4 -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgICD9YwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx M0M0MzIxMTAvBgNVBAUTKDMyOURBMDNEQjk5NDQ3NTE0OThBNUZDQTUzQzg1REFB NjBDQjlBMzIwHhcNMjUwNTA4MDkwMzM3WhcNMjYwNzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02ODFjNzM2OS1kNzZhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAm335H3hp+ccyqWsKbBcaIdefhyM8IqKwZJCqsDCW5LT1K98GLCg+MemcIe3C nioD9GdTQ2eI2I1yv56C1fL1OT3Wvza6SE4u7WvVxAobM47w4kdd3u0ip7Q7dv/5 +yaVPs/71lf0RhXFY9daXrgvX1pfsNABAGB7nSz2ckHNwpBsVxrscCbPn/TMvHld RYNEt4l5srQnTso+RRBZMA4t/IbDeRUiKon6orgS5/+Uk9eBuMXvAuRUjbNwr4J7 VSMW15fDwZOf9mLSKWnhglZ55bN5a12aysVM4zjGwNe7ldBuvLiFtH0TJG0E1mOR oifupjV1FBNCgKdcpM3IOdOZ+QIDAQABo4ICpDCCAqAwHQYDVR0OBBYEFC290alP S1yPl+qCLrk50VYSJ2kFMB8GA1UdIwQYMBaAFDKdoD25lEdRSYpfylPIXapgy5oy MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEzQzQzMi8yRENBQkE2ODVD RjIxMUU5ODQ5MzkyMjRDNEY5QUUwMi9NcDJnUGJtVVIxRkppbF9LVThoZHFtRExt akkuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL01wMmdQYm1VUjFGSmlsX0tVOGhkcW1ETG1qSS5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx M0M0MzIvMkRDQUJBNjg1Q0YyMTFFOTg0OTM5MjI0QzRGOUFFMDIvNTNFNUU3NkMy QkVCMTFGMEI2NDA0MTExQzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwLgYIKwYBBQUHAQcBAf8E HzAdMAwEAgABMAYDBAFnihgwDQQCAAIwBwMFACQEvsAwDQYJKoZIhvcNAQELBQAD ggEBADtYu5rP+TWB222bLXil2vVfq5VcY2Ylf+kpVMEfh/uKK0TgNqkHl9Ne2Dqu 9NK33S92y9mYwy+0qKjDGnDrg1rpeIhjmrTLCkavICHpyI3qsqOa4GdAeMiw7vhF XdlqrudjOOkqiHv8k+WkYmCC6Ea0FlPETg1fVQVGAQ22CVQTNCZ/oeHIWNLADP1/ HrtX48Yj07XYSD3qrme4dJAqe2vTywVbfI1N5X9VJS/31rSoZAv8vfcaDu65xBhG avsQsuR5NGjAYB2XEdnXrR6Ug8SpVmXl0rko0Z9xVtpYXg7lArZ94CO2SWa0xQAM Iv8rrGQGFwAyj36Z+lgsGmeiS7Q= -----END CERTIFICATE-----Generated at Tue May 13 00:03:42 2025 by rpki-client